Lucene search
K

47725 matches found

Vulnrichment
Vulnrichment
โ€ขadded 2026/02/11 12:19 p.m.โ€ข4 views

CVE-2025-48722 Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4...

5.3CVSS5.5AI score0.00391EPSS
Exploits0References1
Cvelist
Cvelist
โ€ขadded 2026/02/11 12:19 p.m.โ€ข24 views

CVE-2025-48722 Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4...

5.3CVSS0.00391EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:19 p.m.โ€ข3 views

CVE-2025-48725

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: QuTS hero...

2.3CVSS5.9AI score0.00398EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:18 p.m.โ€ข4 views

CVE-2025-54147

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4...

5.3CVSS5.5AI score0.00391EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:18 p.m.โ€ข5 views

CVE-2025-54152

A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read sensitive portions of memory. We have already fixed the vulnerability in the following version: Qsync Central...

5.3CVSS5.5AI score0.00373EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
โ€ขadded 2026/02/11 12:18 p.m.โ€ข4 views

CVE-2025-54152 Qsync Central

A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read sensitive portions of memory. We have already fixed the vulnerability in the following version: Qsync Central...

5.3CVSS5.6AI score0.00373EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:17 p.m.โ€ข6 views

CVE-2025-54169

An out-of-bounds read vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5068 and later...

7.1CVSS5.5AI score0.00336EPSS
Exploits0References2Affected Software1
CVE
CVE
โ€ขadded 2026/02/11 12:17 p.m.โ€ข11 views

CVE-2025-54170

CVE-2025-54170 describes an out-of-bounds read in Qsync Central that can be exploited by a remote attacker who has a user account to access secret data. Affected: Qsync Central; vulnerability type is out-of-bounds read in the affected component. Impact is confidentiality of secret data; attack re...

7.1CVSS5.5AI score0.00492EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:17 p.m.โ€ข6 views

CVE-2025-57708

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We hav...

6.3CVSS5.6AI score0.00448EPSS
Exploits0References2Affected Software1
CVE
CVE
โ€ขadded 2026/02/11 12:17 p.m.โ€ข12 views

CVE-2025-57708

CVE-2025-57708 is an allocation of resources without limits or throttling affecting Qsync Central . The root cause is resource exhaustion that can be triggered when a remote attacker gains a user account, enabling them to prevent other systems, applications, or processes from accessing the same t...

6.5CVSS5.6AI score0.00448EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
โ€ขadded 2026/02/11 12:17 p.m.โ€ข3 views

CVE-2025-57708 Qsync Central

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We hav...

6.3CVSS5.6AI score0.00448EPSS
Exploits0References1
CVE
CVE
โ€ขadded 2026/02/11 12:16 p.m.โ€ข16 views

CVE-2025-62853

A path traversal vulnerability in File Station 5 allows an attacker with a user account to read contents of files and system data. Affected: File Station 5; root cause: path traversal. Impact (per metrics): confidentiality LOW, integrity HIGH, availability HIGH; exploitation requires network acce...

7.2CVSS5.5AI score0.00598EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
โ€ขadded 2026/02/11 12:16 p.m.โ€ข27 views

CVE-2025-62854 File Station 5

An uncontrolled resource consumption vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: File Statio...

5.3CVSS0.00534EPSS
Exploits0References1
Cvelist
Cvelist
โ€ขadded 2026/02/11 12:15 p.m.โ€ข21 views

CVE-2025-66278 File Station 5

A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: File Station 5...

5.3CVSS0.00416EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:15 p.m.โ€ข4 views

CVE-2025-66278

A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: File Station 5...

5.3CVSS5.5AI score0.00416EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:15 p.m.โ€ข3 views

CVE-2025-68406

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: Qsync Central...

5.3CVSS5.5AI score0.00537EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
โ€ขadded 2026/02/11 12:15 p.m.โ€ข4 views

CVE-2026-22894

A path traversal vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: File Station 5...

5.3CVSS5.5AI score0.00537EPSS
Exploits0References2Affected Software1
Information Security Automation
Information Security Automation
โ€ขadded 2026/02/11 11:8 a.m.โ€ข14 views

February Microsoft Patch Tuesday

February Microsoft Patch Tuesday. A total of 55 vulnerabilities, half as many as in January. There are as many as six โ—๏ธ vulnerabilities being exploited in the wild: ๐Ÿ”ป SFB/RCE - Windows Shell CVE-2026-21510 ๐Ÿ”ป SFB/RCE - Microsoft Word CVE-2026-21514 ๐Ÿ”ป SFB - MSHTML Framework CVE-2026-21513 ๐Ÿ”ป EoP -...

8.8CVSS6.9AI score0.25835EPSS
Exploits18
GithubExploit
GithubExploit
โ€ขadded 2026/02/11 10:7 a.m.โ€ข196 views

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

CVE-2026-21509 Mitigation Script Traditional Chinese version:...

7.8CVSS6AI score0.72152EPSS
Exploits12
Veracode
Veracode
โ€ขadded 2026/02/11 8:46 a.m.โ€ข9 views

Remote Code Execution (RCE)

@backstage/plugin-techdocs-node is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper sanitization of user-controlled mkdocs.yml configuration specifically MkDocs hooks when TechDocs is configured with runIn: local, which allows an attacker to execute arbitrary Python...

8.8CVSS6.3AI score0.00541EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder